Tinycorelinux uses squashfs packages loop mounted and symlinked to the root filesystem.

The commit below between libXfont2-2.0.2 and 2.0.3 breaks libXfont2 on tinycorelinux. If the commit is reversed libXfont2-2.0.4 works.

Is there a way to achieve the original aim of the commit without breaking things on tinycorelinux?

libXfont2 2.0.3
    
    Signed-off-by: Matthieu Herrb <matthieu@herrb.eu>

commit 7b377456f95d2ec3ead40f4fb74ea620191f88c8
Author: Michal Srb <msrb@suse.com>
Date:   Thu Oct 26 09:48:13 2017 +0200

    Open files with O_NOFOLLOW. (CVE-2017-16611)
    
    A non-privileged X client can instruct X server running under root to open any
    file by creating own directory with "fonts.dir", "fonts.alias" or any font file
    being a symbolic link to any other file in the system. X server will then open
    it. This can be issue with special files such as /dev/watchdog.
    
    Reviewed-by: Matthieu Herrb <matthieu@herrb.eu>